container-selinux-2.213.0-2.el8

- add watch statement removal from container.te - Related: #2176055 Signed-off-by: Jindrich Novy <jnovy@redhat.com>
2023-05-16 15:03:02 +02:00 · 2023-05-16 15:03:02 +02:00 · 09e4700e68
commit 09e4700e68
parent 1f55b99a67
1 changed files with 6 additions and 1 deletions
--- a/container-selinux.spec
+++ b/container-selinux.spec
@ -20,7 +20,7 @@
 Epoch: 2
 Name: container-selinux
 Version: 2.213.0
-Release: 1%{?dist}
+Release: 2%{?dist}
 License: GPLv2
 URL: %{git0}
 Summary: SELinux policies for container runtimes
@ -57,6 +57,7 @@ SELinux policy modules for use with container runtimes.
 # Remove some lines for RHEL 8 build
 %if ! 0%{?fedora} && 0%{?rhel} <= 8
 sed -i 's/watch watch_reads//' container.if
+sed -i 's/watch watch_reads//' container.te
 sed -i '/sysfs_t:dir watch/d' container.te
 sed -i '/systemd_chat_resolved/d' container.te
 %endif
@ -126,6 +127,10 @@ fi
 %{_datadir}/udica/templates/*

 %changelog
+* Tue May 16 2023 Jindrich Novy <jnovy@redhat.com> - 2:2.213.0-2
+- add watch statement removal from container.te
+- Related: #2176055
+
 * Mon May 15 2023 Jindrich Novy <jnovy@redhat.com> - 2:2.213.0-1
 - update to https://github.com/containers/container-selinux/releases/tag/v2.213.0
 - Related: #2176055